-
I need to hook ALL windows callback list(ProcessCreate Callback)
How I can do that?
Exemple:
Lets supose there is 6 callbacks registered by kernel, I traverse the linked list, get the addresses …
-
Hi coinx-security !,
I'am developing process protecting driver / software
i want to try your project on Win 8.1
When driver called : getKernelBase() function, windows giving BDOS with:
SYSTEM_THREAD_…
-
Hello,
is a time sheduled when a signed driver of the fixed WinPmem version will be available?
Thank you!
-
_From [bruen...@google.com](https://code.google.com/u/109494838902877177630/) on June 21, 2011 15:07:08_
filing an issue to cover the idea of using a driver that hooks the probe routines called by th…
-
Hello
There's a fact, malware can easily detect cuckoo hooks, even with the DLL hidden.
Why not go deeper and do the analysis from kernel mode?
This is what zer0m0n does, why not integrate its deve…
Tigzy updated
5 years ago
-
Hey, congratulations that's a very nice lib, but I have a couple of questions:
1 - Will inline hooking be available for remote hooking?
2 - Is it possible to hook functions inside x64 process from x8…
-
Hi, I am experiencing something similar to #2.
Context:
- I am manually mapping a kernel driver based on SimpleSvmHook (nearly no modification except adding stuff in entry point).
- I use a phy…
-
Hi I'm Korean so I can't speak English well
I'm new to cheat engine, so where can I get vmdisk.img?
I'm trying to use DBVM, but I need it
-
Hi, I do not know where to turn for help, so I am writing here.
A lot of time I can not run this application in debug mode.
This is openjdk which is protected from change, protected library jvm.dll.…
-
Hi, i'm trying to build a dkom following your guide and using your code.
I followed all step, but when i use the .exe, and error occurred.
I used Visual studio 2017, latest version of SDK (version…